AWS Certified Solutions Architect - Professional

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Configure a PrivateLink endpoint service in us-east-1 to use the existing NLB in eu-west-2 and grant specific AWS accounts access to the SaaS service.

The correct answer is A. By configuring a PrivateLink endpoint service in us-east-1 to use the existing NLB in eu-west-2, the company can provide access to the new customer without deploying additional EC2 resources in us-east-1. This approach leverages the inter-Region VPC peering and ensures that specific AWS accounts are granted access to the SaaS service. This solution perfectly aligns with the requirement to avoid immediate deployment of new resources in us-east-1 while providing access to the service from that region.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Configure a PrivateLink endpoint service in us-east-1 to use the existing NLB in eu-west-2 and grant specific AWS accounts access to the SaaS service.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A SaaS company utilizes AWS PrivateLink to host a service, which runs on three EC2 instances behind an NLB in private subnets across multiple AZs in the eu-west-2 region. All existing customers are located in eu-west-2. The company has acquired a new customer in the us-east-1 region and has set up a new VPC with subnets in us-east-1, establishing inter-Region VPC peering between the two regions. The company aims to provide the new customer with access to the SaaS service without immediately deploying new EC2 resources in us-east-1. Which solution meets these requirements?

Exam-Like

Configure a PrivateLink endpoint service in us-east-1 to use the existing NLB in eu-west-2 and grant specific AWS accounts access to the SaaS service.

27.3%

Create an NLB in us-east-1, establish an IP target group using the eu-west-2 instances' IP addresses, configure a PrivateLink endpoint service with the us-east-1 NLB, and grant specific AWS accounts access to the SaaS service.

22.7%

Deploy an ALB in front of the eu-west-2 EC2 instances, create an NLB in us-east-1, associate the us-east-1 NLB with an ALB target group using the eu-west-2 ALB, configure a PrivateLink endpoint service with the us-east-1 NLB, and grant specific AWS accounts access to the SaaS service.

18.2%

Utilize AWS RAM to share the eu-west-2 EC2 instances, create an NLB and an instance target group in us-east-1 including the shared instances, configure a PrivateLink endpoint service with the us-east-1 NLB, and grant specific AWS accounts access to the SaaS service.